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COPYRIGHT NOTICE 

Contained herein is material that is subject to copyright protection. 
5 The copyright owner has no objection to the facsimile reproduction of the 
patent disclosure by any person as it appears in the Patent and Trademark 
Office patent files or records, but otherwise reserves all rights to the copyright 
whatsoever. 



10 FIELD OF THE INVENTION 

This invention relates to the field of server load balancing, Internet 
quality of service, and security and more specifically, to a mechanism for 
locking client requests to a particular server. 

15 BACKGROUND OF THE INVENTION 

The demand for e-commerce brings a unique set of challenges to 
network infrastructures. For example, one server may be inadequate to 
provide the required capacity and scalability to serve the increasing size of e- 
commerce transactions. Server load balancing (SLB) was developed to 

20 overcome this problem, where a number of servers (server farm) act as a 
single server and a special device (dispatcher) dispatches requests to server 
in a manner that balances the load on all the servers in the serve farm. Some 
SLB schemes may dispatch requests to the server having the least load, and 
other SLB schemes may dispatch requests to any server such that the 

25 network is optimized, for example. For purposes of simplicity, the server 
selected by any given SLB scheme is referred to herein as the "best server". 

In e-commerce transactions hosted on a website, however, SLB 
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introduces a new problem. When a customer sends information to a website 
that utilizes an SLB scheme, the information is sent to the best server 
computed by the dispatcher, Server A, and stored locally on that server. For 
example, a customerofAmazon.com® selects books and places them in the 
5 shopping cart, and then decides to visit other areas of the site before 

purchasing. When the customer returns to the shopping cart, effectively to 
access state information (the state of previously stored information), the SLB 
scheme again computes the best server, this time Server B, to direct the 
customer's request to. Since the distribution of requests amongst the servers 
10 in the server farm may have changed since the customer's last request, the 
best server on the subsequent request is different from the best server on the 
first request. Consequently, the customer's information does not exist on 
Server B, and the shopping cart may be empty when the customer returns to 
it. 

15 One current solution to this problem is to globally maintain state 

information, such that the state information can be accessed by any server in 
the server farm. For example, state information can be maintained in a 
special state server, or even one of the servers in the server farm. One of the 
disadvantages to this, however, is the latency associated with memory 

20 accesses by the servers, as well as dispatcher latency associated with storing 
state information. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention is illustrated by way of example, and not by way of 
limitation, in the figures of the accompanying drawings and in which like 
reference numerals refer to similar elements and in which: 

5 FIG. 1 illustrates an exemplary server load balancing (SLB) environment 

in which preferred embodiments of the present invention are operable. 

FIG. 2 illustrates elements in an exemplary environment. 

FIG. 3 is a method of preferred embodiments of the invention. 

FIG. 4 illustrates how quality of service can be applied in embodiments of 
10 the present invention. 
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DETAILED DESCRIPTION OF THE INVENTION 

in one aspect of the invention, a method for directing requests from the 
same client in a single session to the same server in secure e-commerce 
transactions is described. In one exemplary use for this method, a user submits 
5 state information, hereinafter referred to as a client request, over the Internet to 
an e-commerce website, such as Amazon.com®, and the state information is 
stored on a system server. The e-commerce website comprises a dispatcher (a 
system for sending client requests to a server) and server farm (a pool of a 
plurality of servers for processing client requests). The client request is received 
10 by the dispatcher, and a unique session identifier (I.D.) is assigned to the client 
request. The dispatcher selects a server to send the client request to, and sends 
the client request to the selected server. The session I.D. is mapped to a server 
identifier associated with the selected server. 

In preferred embodiments, when the client request is received by the 
15 dispatcher, the dispatcher establishes a secure connection, preferably SSL 
(Secure Sockets Layer), with the client. The dispatcher then uses a load 
balancing algorithm to determine the best server in the server farm to send the 
client request to. The unique session I.D. is then mapped to an SSL context, 
which identifies a previously existing SSL tunnel between the dispatcher and the 
20 selected server, such that subsequent requests having the same session I.D. can 
be directed to the same server via the SSL tunnel. 

The present invention includes various operations, which will be described 
below. The operations of the present invention may be performed by hardware 
components or may be embodied in machine-executable instructions, which may 
25 be used to cause a general-purpose or special-purpose processor or logic 
circuits programmed with the instructions to perform the operations. 
Alternatively, the operations may be performed by a combination of hardware 
and software. 

The present invention may be provided as a computer program product, 
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which may include a machine-readable medium having stored thereon 
instructions which may be used to program a computer (or other electronic 
devices) to perform a process according to the present invention. The machine- 
readable medium may include, but is not limited to, floppy diskettes, optical disks, 
5 CD-ROMs, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, 
magnet or optical cards, flash memory, or other type of media / machine- 
readable medium suitable for storing electronic jnstructions. Moreover, the 
present invention may also be downloaded as a computer program product, 
wherein the program may be transferred from a remote computer (e.g., a server) 
10 to a requesting computer (e.g., a client) by way of data signals embodied in a 
carrier wave or other propagation medium via a communication link (e.g., a 
modem or network connection). Accordingly, herein, a carrier wave shall be 
regarded as comprising a machine-readable medium. 

Introduction 

15 FIG. 1 illustrates an exemplary environment in which preferred 

embodiments of the present invention are operable. A user on a client system 
100 logs into a server system 1 16 to conduct transactions, such as to browse the 
contents of a website, purchase goods from a website, or request information 
from a website. The server system 116 comprises a dispatcher 104 and a server 

20 farm 106 comprising a plurality of servers 108, 110, 112, 114. The dispatcher 
receives user requests to process transactions and selects one of the servers 
108, 110, 112, 114 to send a given user request to. On a first session of a given 
user, the dispatcher 104 preferably selects a server 108, 110, 112, 114 from the 
server farm by using a load balancing algorithm to find the best server. 

25 Preferably, the dispatcher selects the same server that was selected for the 
user's first session on subsequent sessions for the same user if the request 
comprises secure information. 

FIG. 3 outlines a method of the present invention starting at block 300. A 
first user request comprising a session I.D. is received at block 302. At block 
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304, it is determined if the transaction is a secure transaction. If it is, then at 
block 306, it is determined if the session I.D. exists in the mapping table. If the 
session I.D. does not exist in the mapping table, or if the transaction is not 
secure, then at block 310, a load-balancing algorithm is used to find the best 
5 server. Furthermore, the user request is sent to the best server at block 312. If 
the user request is a secure transaction, then at block 314, the mapping table is 
updated to include an entry for the session I.D. and the corresponding SSL 
context for the selected server. 

If the transaction is secure and the session I.D. exists, then at block 308, 
10 the session I.D. is searched for in the mapping table, and the request is sent to 
the server corresponding to the session I.D. The method ends at block 316. 

Secure Transactions 

In preferred embodiments, the dispatcher distinguishes between secure 
and non-secure transactions. Secure transactions may be determined by the 

15 server system. For instance, secure transactions may be determined to 

comprise credit card transactions, a user's personal information, or user reviews. 
Non-secure transactions may be determined to comprise a user request for a 
book rating, for instance. As described herein, secure transactions refer to 
transactions in which information needs to be saved. Such information, such as 

20 personal data, and credit card information, is referred to as state information. 

If a user request is determined to be a secure transaction, the dispatcher 
processes the request differently than if the request were a non-secure 
transaction. In preferred embodiments, the dispatcher 104 has previously 
existing SSL (Secure Sockets Layer) tunnels and corresponding SSL contexts 
25 118, 120, 122 with the servers 108, 110, 112, 114 in the server farm 106 to 
handle secure transactions. An SSL tunnel is a designated channel of 
communication, and a corresponding SSL context comprises a source IP 
(Internet protocol) address, a destination IP address, and an encryption algorithm 
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that identifies a corresponding SSL tunnel. 

Initial User Session Requests 

When the user logs onto a website associated with a server system 1 16 to 
conduct a secure transaction, as shown in FIG. 2, the dispatcher 104 looks in a 
5 mapping table 204 to determine if the session I.D. has already been mapped to a 
specific server. If not, an SSL tunnel and corresponding SSL context 200 
between the dispatcher 104 and the client 100 is created. The SSL context 
between the client 100 and the dispatcher 104 additionally comprises a session 
I.D. to uniquely identify the user's current login session. For example, a user 
10 logs onto Amazon.com®, places items in the shopping cart, submits the items for 
payment, and then decides to continue browsing the site. 

The dispatcher 104 uses a load-balancing algorithm (by employing a load 
balancer, for instance), to find which one of the servers 1 08, 1 1 0, 1 1 2, 1 1 4 in the 
server farm 106 can best handle the current user request. As discussed, supra, 
15 the best server can be the server currently having the least load, or the server 
which can best alleviate network traffic, for instance. A load-balancing table 202 
is updated accordingly. 

Once a best server is determined, the user request is sent to the selected 
server 108. The dispatcher then maps the current session I.D. to the SSL 
20 context between the dispatcher 1 04 and the selected server 1 08 by adding an 
entry to a mapping table 204 for the session I.D. and the SSL context. The 
selected server receives the user's request, and stores corresponding 
information in its local memory for subsequent access. 

Subsequent User Session Requests 

25 When the user makes another request, (for example, the user has finished 

browsing the site and wishes to return to the shopping cart previously submitted), 
the dispatcher receives the subsequent request. Using the session I.D. from the 
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user request, the dispatcher 104 determines if the session I.D. exists in the 
mapping table 204. If the session I.D. exists in the mapping table 204, then the 
dispatcher sends the user's subsequent request to the server corresponding to 
the session I.D. as indicated by the mapping table 204. Since the previously 
5 submitted information is stored on this server, the user's information is quickly 
accessed on the server, and available to the user. 

If the session I.D. does not exist in the mapping table 204, then 
processing proceeds as described for an initial user session request, supra. 

Quality of Service 

10 Where multiple requests are received on the same SSL tunnel between 

the dispatcher and a given server, a QoS (Quality of Service) Manager uses 
predetermined algorithms to aggregate multiple streams into a single stream. In 
reference to FIG. 4, when multiple clients, such as Client 1 404, and Client 2 402, 
are directed to the same server via an SSL tunnel, as determined by the load 

15 balancer 204, a QoS Manager 400 decides which client gets priority of the SSL 
tunnel. An exemplary algorithm used by the QoS Manager can be found in 
pending United States patent application entitled "Secure Communications Over 
Unsecure Links" by Manav Mishra, Raj Yavatkar, and Prakash Iver, filed on 
September 5, 2000, serial no. . 

20 FIG. 4 further illustrates that when Client 1 404A, 406A submits a request 

to the dispatcher 104, Client 1 may submit a secure transaction 404B or a non- 
secure transaction 406B. If Client 1 submits a non-secure transaction, then a 
load balancer 204 determines which server in the server farm the client request 
is to be sent to via the current SSL connection 406B. If Client 1 submits a secure 

25 transaction, then a mapping table 204 is searched to determine if a session I.D. 
associated with Client 1 exists in the table. If it does, then the client request is 
sent to the server corresponding to the session I.D. in the mapping table 204. If 
the session I.D. does not exist, then a load balancer 410 uses a load balancing 
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table 202 to determine which server in the server farm to direct the client request 
to. Client 1 request is then sent to the selected server 408. 

Where a second client, Client 2 402A, makes a client request and the load 
balancer 410 directs Client 2 request to the same server as Client 1 , both 
5 requests 404B, 402B are sent to a QoS Manager 400 and, the QoS Manager 
decides which request to handle first. In the example of FIG. 4, Client 1 's secure 
request 404B is a high-priority SSL request, and Client 2's secure request is a 
low-priority SSL request. The QoS Manager 400 then processes the requests 
according to their priorities, such that Client 1 404B receives a high-priority SSL 
10 connection with one of the servers in the server farm 408, and Client 2 402B 
receives a low-priority SSL connection with one of the servers in the server farm 
412. 

Non-Secure Transactions 

In one embodiment, if a user request is determined to be a non-secure 
15 transaction, the dispatcher processes all user requests in the same way. In other 
words, the dispatcher uses a load balancing algorithm to find the best server, and 
forwards all requests to the best server determined at the time a request is 
received. 

In other embodiments, non-secure (non-SSL) transactions can always be 
20 mapped to the same server using the scheme for secure transactions by using a 
cookie, or a block of data, as the session I.D. (rather than the SSL context in the 
case of a secure transaction). The cookie would be generated by the best server 
and returned to the client. When another client request is made from the same 
client, the cookie comprises information about the server that generated the 
25 cookie so that the request can be sent to the original server. 

Conclusion 

As described in embodiments of this invention above, the latency 
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associated with global accesses is alleviated, since information is locally stored 
at selected servers. Moreover, there is no loss of information since the same 
server is selected to process user requests. 

In the foregoing specification, the invention has been described with 
5 reference to specific embodiments thereof. It will, however, be evident that 
various modifications and changes may be made thereto without departing from 
the broader spirit and scope of the invention. The specification and drawings 
are, accordingly, to be regarded in an illustrative rather than a restrictive sense. 

For example, while embodiments herein have been described to 
10 distinguish between secure and non-secure transactions, the invention can be 
implemented without making this distinction. In other words, regardless of the 
type of user request, the dispatcher may forward all user requests in the same 
session to the server for processing. 
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WHAT IS CLAIMED IS: 
11. A method comprising: 

2 receiving a first request comprising a session identifier (I.D.); 

3 assigning a unique I.D. to the first request; 

4 selecting one of a plurality of servers to process the first request; 

5 assigning the unique I.D. to the selected server; and 

6 sending the first request to the server. 

1 2. A method as in claim 1, additionally comprising: 

2 subsequently receiving a second request comprising the session I.D.; 

3 selecting the server that the session I.D. is assigned to; and 

4 sending the second request to the server. 

1 3. A method as in claim 1 , wherein said selecting one of a plurality of servers 

2 to process the first request comprises using a load balancing algorithm to 

3 determine a server to the first request to. 

1 4. A method comprising: 

2 receiving a first request comprising a session identifier (I.D.); 

3 selecting one of a plurality of servers to process the first request; 

4 mapping the session I.D. to the selected server; 

5 sending the first request to the selected server; 

6 subsequently receiving a second request comprising the session I.D.; 

7 determining that the second request comprises secure information; 
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8 selecting the server that the session I.D. is assigned to; and 

9 sending the second request to the server. 

1 5. A method as in claim 4, wherein the server is identified by an SSL (Secure 

2 Sockets Layer) context. 

1 6. A method as in claim 4, wherein said selecting one of a plurality of servers 

2 to process the first request comprises using a load balancing algorithm to 

3 determine a server to route the first request to. 

1 7. A method as in claim 4, additionally comprising: 

2 determining that the second request comprises non-secure information; 

3 and 

4 using a load balancing algorithm to determine a server to route the second 

5 request to. 

18. A method comprising: 

2 receiving a first request comprising a session identifier (I.D.); 

3 selecting one of a plurality of servers to process the first request, the 

4 server having a unique SSL (Secure Socket Layer) context, and the 

5 unique SSL context being associated with an SSL tunnel; 

6 mapping the session l.D. to the selected SSL context; 

7 sending the first request to the selected server; 

8 subsequently receiving a second request comprising the session I.D.; 

9 determining that the second request comprises secure information; 

10 selecting the SSL context that the session l.D. is assigned to; and 

11 sending the second request to the server via the SSL tunnel associated 

12 with the SSL context. 
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1 9. A method as in claim 8, wherein said selecting one of a plurality of servers 

2 to process the first request comprises using a load balancing algorithm to 

3 determine a server to route the first request to. 

1 10. A method as in claim 8, additionally comprising: 

2 determining that the second request comprises non-secure information; 

3 and 

4 using a load balancing algorithm to determine a server to route the second 

5 request to. 

1 11. A method comprising: 

2 receiving a request comprising a session identifier (I.D.); 

3 determining if the session I.D. is associated with an SSL (Secure Sockets 

4 Layer) context; 

5 determining if the request is associated with a secure transaction; 

6 if no session I.D. is associated with an SSL context, then selecting one of 

7 a plurality of servers to process the first request, the server having 

8 a unique SSL (Secure Socket Layer) context, and the unique SSL 

9 context being associated with an SSL tunnel; and 

10 if the request is associated with a secure transaction, then: 

1 1 mapping the session I.D. to the selected SSL context; and 

12 sending the second request to the server via the SSL tunnel 

13 associated with the SSL context. 

1 12. A method as in claim 1 1 , wherein said selecting one of a plurality of 

2 servers to process the request comprises using a load balancing algorithm 

3 to determine a server to route the request to. 
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1 13. A method as in claim 1 1 , wherein said determining if the request is 

2 associated with a secure transaction comprises determining if an SSL 

3 packet is associated with the request. 

1 14. A method as in claim 1 1 , wherein said determining if the session I.D. is 

2 associated with an SSL (Secure Sockets Layer) context comprises looking 

3 up the session I.D. in a mapping table to determine if the mapping table 

4 comprises an entry for the session I.D. and a corresponding SSL context. 

1 15. A system comprising a dispatching processor unit to: 

2 receive a first request comprising a unique session identifier (I.D.); 

3 select a server from a plurality of servers to process the request; 

4 assign the unique session I.D. to the selected server, and store the unique 

5 session I.D. and corresponding identifier for the selected server in a 

6 mapping table comprising entries of session I.D.s each having a 

7 corresponding server identifier; 

8 send the first request to the selected server; 

9 receive a second request comprising the unique session I.D.; 

10 find the unique session I.D. in the mapping table; and 

1 1 send the second request to the server corresponding to the unique 

12 session I.D. in the mapping table. 

1 16. A system as in claim 15, wherein a preexisting SSL (Secure Sockets 

2 Layer) tunnel exists between the dispatching processor unit and the 

3 selected server, the SSL tunnel being identified by an SSL context, and 

4 the mapping table comprising entries of session I.D.s each having a 

5 corresponding SSL context. 

1 17. A system as in claim 15, wherein the dispatching processing unit selects 
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2 one of a plurality of servers to process the request by using a load 

3 balancing algorithm to determine a server to route the request to. 

1 18. A system as in claim 17, wherein the dispatching processing unit uses a 

2 load balancing algorithm to determine a server to route the request to by 

3 employing a load balancer. 

1 19. A system comprising: 

1 a dispatching processor unit to: 

2 send client requests to a plurality of servers in a server farm; 

3 receive a client request comprising a session identifier (I.D.); 

4 determine if state information associated with the session I.D. 

5 already exists on one of a plurality of servers in the server 

6 farm; 

7 send the client request to the server if the state information already 

8 exists on a server; and 

9 employ a load balancer to determine one of the servers to send the 

10 client request to if the state information does not already 

1 1 exist on a server; 

12 a load balancer in communication with the dispatching processor unit to 

13 determine one of a plurality of servers to send the client request to; 

14 and 

15 a quality of service (QoS) manager in communication with the dispatching 

16 processor unit to decide which one of multiple client requests is 

17 processed if multiple client requests are sent to the same server. 

1 20. A system as in claim 19, wherein the dispatching processor unit 

2 determines if state information associated with the session I.D. already 

3 exists on one of a plurality of servers in a server farm by searching a 
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4 mapping table comprising a session I.D. mapped to a server. 

1 21 . A system as in claim 20, wherein the session I.D. is mapped to a server by 

2 the session I.D. being associated with an SSL (Secure Sockets Layer) 

3 context, and the SSL context is associated with the server. 

1 22. A machine-readable medium having stored thereon data representing 

2 sequences of instructions, the sequences of instructions which, when 

3 executed by a processor, cause the processor to perform the following: 

4 receive a first request comprising a session identifier (I.D.); 

5 select one of a plurality of servers to process the first request; 

6 map the session I.D. to the selected server; 

7 send the first request to the selected server; 

8 subsequently receive a second request comprising the session I.D.; 

9 determine that the second request comprises secure information; 

10 select the server that the session I.D. is assigned to; and 

1 1 send the second request to the server. 

1 23. A medium as in claim 22, wherein the server is identified by an SSL 

2 (Secure Sockets Layer) context. 

1 24. A medium as in claim 22, wherein the processor selects one of a plurality 

2 of servers to process the first request by using a load balancing algorithm 

3 to determine a server to route the first request to. 

1 25. A medium as in claim 22, the processor to additionally: 

2 determine that the second request comprises non-secure information; and 

3 usea load balancing algorithm to determine a server to route the second 

4 request to. 
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ABSTRACT OF THE INVENTION 

In one aspect of the invention is a method for locking in all client requests 
having the same session I.D. to the same server to facilitate secure e-commerce 
transactions. A client's session I.D. is mapped to an SSL context between a 
dispatcher and a server such that all subsequent client requests having the same 
session I.D. are forwarded to the same server. 
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My residence, post office address and citizenship are as stated below, next to my name. 

I believe I am the original, first, and sole inventor (if only one name is listed below) or an original, 
first, and joint inventor (if plural names are listed below) of the subject matter which is claimed and 
for which a patent is sought on the invention entitled 

MECHANISM FOR LOCKING CLIENT REQUESTS TO A PARTICULAR SERVER 

the specification of which 

X is attached hereto. 

was filed on as 

United States Application Number 

or PCT International Application Number 

and was amended on . 

(if applicable) 

I hereby state that I have reviewed and understand the contents of the above-identified 
specification, including the claim(s), as amended by any amendment referred to above. I do not 
know and do not believe that the claimed invention was ever known or used in the United States of 
America before my invention thereof, or patented or described in any printed publication in any 
country before my invention thereof or more than one year prior to this application, that the same 
was not in public use or on sale in the United States of America more than one year prior to this 
application, and that the invention has not been patented or made the subject of an inventor's 
certificate issued before the date of this application in any country foreign to the United States of 
America on an application filed by me or my legal representatives or assigns more than twelve 
months (for a utility patent application) or six months (for a design patent application) prior to this 
application. 

I acknowledge the duty to disclose all information known to me to be material to patentability as 
defined in Title 37, Code of Federal Regulations, Section 1 .56. 

I hereby claim foreign priority benefits under Title 35, United States Code, Section 1 19(a)-(d), of any 
foreign application(s) for patent or inventor's certificate listed beiow and have also identified below 
any foreign application for patent or inventor's certificate having a filing date before that of the 
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of Title 35, United States Code, Section 1 12, 1 acknowledge the duty to disclose ail information 
known to me to be material to patentability as defined in Title 37, Code of Federal Regulations, 
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to (303) 740-1980. 
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statements made on information and belief are believed to be true; and further that these 
statements were made with the knowledge that willful false statements and the like so made 
are punishable by fine or imprisonment, or both, under Section 1001 of Title 18 of the United 
States Code and that such willful false statements may jeopardize the validity of the 
application or any patent issued thereon. 
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35,432; William Thomas Babbitt, Reg. No. 39,591; Carol F. Barry, Reg. No. 41,600; Jordan Michael 
Becker, Reg. No. 39,602; Bradley J. Bereznak, Reg. No. 33,474; Michael A. Bernadicou, Reg. No. 35,934; 
Roger W. Blakely, Jr., Reg. No. 25,831; Gregory D. Caldwell, Reg. No. 39,926; Ronald C. Card, Reg. No/ 
P44,587; Thomas M. Coester, Reg. No. 39,637; Stephen M. De Klerk, under 37 C.F.R. § 10.9(b); Michael 
Anthony DeSanctis, Reg. No. 39,957; Daniel M. De Vos, Reg. No. 37,813; Robert Andrew Diehl, Reg. No 
40,992; Matthew C. Fagan, Reg. No. 37,542; Tarek N. Fahmi, Reg. No. 41,402; James Y. Go, Reg. No. 
40,621; James A. Henry, Reg. No. 41,064; Libby N.Ho, Reg. No. 46,774; Willmore F. Holbrow III, Reg. 
No. P41,845; Sheryl Sue Holloway, Reg. No. 37,850; George W Hoover II, Reg. No. 32,992; 
Eric S. Hyman, Reg. No. 30,139; Dag H. Johansen, Reg. No. 36,172; William W. Kidd, Reg. No. 31,772; 
Erica W. Kuo, Reg. No. 42,775; Michael J. Mallie, Reg. No. 36,591; Andre L. Marais, under 37 C.F.R. § 
10.9(b); Paul A. Mendonsa, Reg. No. 42,879; Darren J. Milliken, Reg. 42,004; Lisa A. Norris, Reg. No 
P44.976; Chun M. Ng, Reg. No. 36,878; Thien T. Nguyen, Reg. No. 43,835; Thinh V. Nguyen, Reg. No. 
42,034; Dennis A. Nicholls, Reg. No. 42,036; Kimberley G. Nobles, Reg. No. 38,255; Daniel E. Ovanezian, 
Reg. No. 41 ,236; Babak Redjaian, Reg. No. 42,096; William F. Ryann, Reg. 44,313; James H. Salter, 
Reg. No. 35,668; William W. Schaal, Reg. No. 39,018; James C. Scheller, Reg. No. 31,195; Jeffrey Sam 
Smith, Reg. No. 39,377; Maria McCormack Sobrino, Reg. No. 31,639; Stanley W. Sokoloff, Reg. No. 
25,128; Judith A. Szepesi, Reg. No. 39,393; Vincent P. Tassinari, Reg. No. 42,179; Edwin H. Taylor, Reg. 
No. 25,129; John F. Travis, Reg. No. 43,203; George G. C. Tseng, Reg. No. 41,355; Joseph A. 
Twarowski, Reg. No. 42,191; Lester J. Vincent, Reg. No. 31,460; Glenn E. Von Tersch, Reg. No. 41,364; 
John Patrick Ward, Reg. No. 40,216; Charles T. J. Weigell, Reg. No. 43,398; James M. Wu, Reg. No 
P45.241; Steven D. Yates, Reg. No. 42,242; Ben J. Yorks, Reg. No. 33,609; and Norman Zafman, Reg. 
No. 26,250; my patent attorneys, and Andrew C. Chen, Reg. No. 43,544; Justin M. Dillon, Reg. No. 
42,486; Paramita Ghosh, Reg. No. 42,806; and Sang Hui Kim, Reg. No. 40,450; my patent agents of 
BLAKELY, SOKOLOFF, TAYLOR & ZAFMAN LLP, with offices located at 12400 Wilshire Boulevard 7th 
Floor, Los Angeles, California 90025, telephone (310) 207-3800, and Alan K. Aldous, Reg. No. 31,905; 
Robert D. Anderson, Reg. No. 33,826; Joseph R. Bond, Reg. No. 36,458; Richard C. Calderwood, Reg. 
No. 35,468; Jeffrey S. Draeger, Reg. No. 41,000; Cynthia Thomas Faatz, Reg No. 39,973; Sean 
Fitzgerald, Reg. No. 32,027; Seth Z. Kalson, Reg. No. 40,670; David J. Kaplan, Reg. No. 41,105; Charles 
A. Mirho, Reg. No. 41,199; Leo V. Novakoski, Reg. No. 37,198; Naomi Obinata, Reg. No. 39,320; 
Thomas C. Reynolds, Reg. No. 32,488; Kenneth M. Seddon, Reg. No. 43,105; Mark Seeley, Reg. No. 
32,299; Steven P. Skabrat, Reg. No. 36,279; Howard A. Skaist, Reg. No. 36,008; Steven C. Stewart, Reg. 
No. 33,555; Raymond J. Werner, Reg. No. 34,752; Robert G. Winkle, Reg. No. 37,474; and Charles K. 
Young, Reg. No. 39,435; my patent attorneys, and Thomas Raleigh Lane, Reg. No. 42,781; Calvin E. 
Wells; Reg. No. P43,256, Peter Lam, Reg. No. P44,855; and Gene I. Su, Reg. No. 45,140; my patent 
agents, of INTEL CORPORATION; and James R. Thein, Reg. No. 31,710, my patent attorney; with full 
power of substitution and revocation, to prosecute this application and to transact all business in the 
Patent and Trademark Office connected herewith. 
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APPENDIX B 



Title 37, Code of Federal Regulations, Section 1.56 
Duty to Disclose Information Material to Patentability 

(a) A patent by its very nature is affected with a public interest. The public interest is best served, 
and the most effective patent examination occurs when, at the time an application is being examined, the 
Office is aware of and evaluates the teachings of all information material to patentability. Each individual 
associated with the filing and prosecution of a patent application has a duty of candor and good faith in 
dealing with the Office, which includes a duty to disclose to the Office all information known to that individual 
to be material to patentability as defined in this section. The duty to disclosure information exists with respect 
to each pending claim until the claim is cancelled or withdrawn from consideration, or the application becomes 
abandoned. Information material to the patentability of a claim that is cancelled or withdrawn from 
consideration need not be submitted if the information is not material to the patentability of any claim 
remaining under consideration in the application. There is no duty to submit information which is not material 
to the patentability of any existing claim. The duty to disclosure all information known to be material to 
patentability is deemed to be satisfied if all information known to be material to patentability of any claim 
issued in a patent was cited by the Office or submitted to the Office in the manner prescribed by §§1 .97(b)-(d) 
and 1.98. However, no patent will be granted on an application in connection with which fraud on the Office 
was practiced or attempted or the duty of disclosure was violated through bad faith or intentional misconduct. 
The Office encourages applicants to carefully examine: 

(1) Prior art cited in search reports of a foreign patent office in a counterpart application, and 

(2) The closest information over which individuals associated with the filing or prosecution of a 
patent application believe any pending claim patentably defines, to make sure that any material information 
contained therein is disclosed to the Office. 

(b) Under this section, information is material to patentability when it is not cumulative to 
information already of record or being made or record in the application, and 

(1 ) It establishes, by itself or in combination with other information, a prima facie case of 
unpatentability of a claim; or 

(2) It refutes, or is inconsistent with, a position the applicant takes in: 

(i) Opposing an argument of unpatentability relied on by the Office, or 

(ii) Asserting an argument of patentability. 

A prima facie case of unpatentability is established when the information compels a conclusion that a claim is 
unpatentable under the preponderance of evidence, burden-of-proof standard, giving each term in the claim 
its broadest reasonable construction consistent with the specification, and before any consideration is given to 
evidence which may be submitted in an attempt to establish a contrary conclusion of patentability. 

(c) Individuals associated with the filing or prosecution of a patent application within the 
meaning of this section are: 

(1 ) Each inventor named in the application; 

(2) Each attorney or agent who prepares or prosecutes the application; and 

(3) Every other person who is substantively involved in the preparation or prosecution of the 
application and who is associated with the inventor, with the assignee or with anyone to whom there is an 
obligation to assign the application. 

(d) Individuals other than the attorney, agent or inventor may comply with this section by 
disclosing information to the attorney, agent, or inventor. 
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